W3C home > Mailing lists > Public > public-webappsec@w3.org > October 2021

Weekly github digest (WebAppSec specs)

From: W3C Webmaster via GitHub API <sysbot+gh@w3.org>
Date: Mon, 25 Oct 2021 17:00:40 +0000
To: public-webappsec@w3.org
Message-Id: <E1mf3Ky-0003tr-81@uranus.w3.org>



Issues
------
* w3c/webappsec (+0/-0/💬1)
  1 issues received 1 new comments:
  - #532 Content-Security-Policy didn't get into the IANA message header registry (1 by SmashManiac)
    https://github.com/w3c/webappsec/issues/532 

* w3c/webappsec-csp (+2/-1/💬13)
  2 issues created:
  - Extracting header list values is going away (by annevk)
    https://github.com/w3c/webappsec-csp/issues/522 
  - Editorial: header names and values are byte sequences (by annevk)
    https://github.com/w3c/webappsec-csp/issues/521 

  3 issues received 13 new comments:
  - #522 Extracting header list values is going away (1 by annevk)
    https://github.com/w3c/webappsec-csp/issues/522 
  - #518 Request to Support Dynamic Resource Validation (9 by dveditz, gulachek, mozfreddyb)
    https://github.com/w3c/webappsec-csp/issues/518 
  - #404 CSP HTTP headers not registered with IANA (3 by SmashManiac, mikewest, mnot)
    https://github.com/w3c/webappsec-csp/issues/404 

  1 issues closed:
  - Extracting header list values is going away https://github.com/w3c/webappsec-csp/issues/522 

* w3c/webappsec-credential-management (+1/-2/💬1)
  1 issues created:
  - Fix build errors and warnings (by nsatragno)
    https://github.com/w3c/webappsec-credential-management/issues/171 [editorial] 

  1 issues received 1 new comments:
  - #115 current build error and linking warnings (1 by nsatragno)
    https://github.com/w3c/webappsec-credential-management/issues/115 [editorial] 

  2 issues closed:
  - Fix build errors and warnings https://github.com/w3c/webappsec-credential-management/issues/171 [editorial] 
  - current build error and linking warnings https://github.com/w3c/webappsec-credential-management/issues/115 [editorial] 

* w3c/permissions (+1/-1/💬4)
  1 issues created:
  - Export "create a `PermissionStatus`" dfn (by miketaylr)
    https://github.com/w3c/permissions/issues/297 

  2 issues received 4 new comments:
  - #297 Export "create a `PermissionStatus`" dfn (2 by marcoscaceres, miketaylr)
    https://github.com/w3c/permissions/issues/297 
  - #294 Ensure "midi" permission is integrated in Web Midi API spec (2 by miketaylr)
    https://github.com/w3c/permissions/issues/294 

  1 issues closed:
  - Export "create a `PermissionStatus`" dfn https://github.com/w3c/permissions/issues/297 

* w3c/webappsec-referrer-policy (+0/-0/💬1)
  1 issues received 1 new comments:
  - #115 Redesign of "extract header list values" expected (1 by annevk)
    https://github.com/w3c/webappsec-referrer-policy/issues/115 

* w3c/webappsec-permissions-policy (+5/-0/💬2)
  5 issues created:
  - explain 'none' more fully (by equalsJeffH)
    https://github.com/w3c/webappsec-permissions-policy/issues/435 
  - incorrect grammar: "and in and HTML attributes" (by equalsJeffH)
    https://github.com/w3c/webappsec-permissions-policy/issues/434 
  - sh-dictionary link 404s (by equalsJeffH)
    https://github.com/w3c/webappsec-permissions-policy/issues/433 
  - [HEADER-STRUCTURE] reference needs updating (by equalsJeffH)
    https://github.com/w3c/webappsec-permissions-policy/issues/432 
  - Re-add Feature-Policy header as an alias? (by gsnedders)
    https://github.com/w3c/webappsec-permissions-policy/issues/430 

  2 issues received 2 new comments:
  - #430 Re-add Feature-Policy header as an alias? (1 by annevk)
    https://github.com/w3c/webappsec-permissions-policy/issues/430 
  - #331 HTTP headers not registered with IANA (1 by SmashManiac)
    https://github.com/w3c/webappsec-permissions-policy/issues/331 

* w3c/webappsec-fetch-metadata (+1/-0/💬0)
  1 issues created:
  - Update reference for structured headers (by bplommer)
    https://github.com/w3c/webappsec-fetch-metadata/issues/79 

* w3c/webappsec-trusted-types (+0/-0/💬6)
  2 issues received 6 new comments:
  - #347 Create [TrustedTypes].fromLiteral method (1 by koto)
    https://github.com/w3c/webappsec-trusted-types/issues/347 
  - #342 CfC to publish as an FPWD. (5 by OR13, dveditz, koto, mikewest, shhnjk)
    https://github.com/w3c/webappsec-trusted-types/issues/342 



Pull requests
-------------
* w3c/webappsec-credential-management (+2/-1/💬6)
  2 pull requests submitted:
  - Fix several build errors and warnings (by nsatragno)
    https://github.com/w3c/webappsec-credential-management/pull/172 [editorial] 
  - Update Conditional UI mediation (by nsatragno)
    https://github.com/w3c/webappsec-credential-management/pull/170 

  1 pull requests received 6 new comments:
  - #170 Update Conditional UI mediation (6 by equalsJeffH, nsatragno)
    https://github.com/w3c/webappsec-credential-management/pull/170 [process:meta-pr] 

  1 pull requests merged:
  - Fix several build errors and warnings
    https://github.com/w3c/webappsec-credential-management/pull/172 [editorial] 

* w3c/permissions (+1/-1/💬0)
  1 pull requests submitted:
  - chore: Export [=create a PermissionStatus=] (by miketaylr)
    https://github.com/w3c/permissions/pull/298 

  1 pull requests merged:
  - chore: Export [=create a PermissionStatus=]
    https://github.com/w3c/permissions/pull/298 

* w3c/webappsec-permissions-policy (+1/-0/💬0)
  1 pull requests submitted:
  - Default allowlists only effect child browsing contexts (by reillyeon)
    https://github.com/w3c/webappsec-permissions-policy/pull/431 

* w3c/webappsec-trusted-types (+1/-0/💬3)
  1 pull requests submitted:
  - Spec draft for fromLiteral method. See #347. (by koto)
    https://github.com/w3c/webappsec-trusted-types/pull/350 

  3 pull requests received 3 new comments:
  - #350 Spec draft for fromLiteral method. See #347. (1 by koto)
    https://github.com/w3c/webappsec-trusted-types/pull/350 
  - #339 Bump hosted-git-info from 2.7.1 to 2.8.9 (1 by dependabot)
    https://github.com/w3c/webappsec-trusted-types/pull/339 [dependencies] 
  - #338 Bump y18n from 3.2.1 to 3.2.2 (1 by dependabot)
    https://github.com/w3c/webappsec-trusted-types/pull/338 [dependencies] 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/w3c/webappsec
* https://github.com/w3c/webappsec-subresource-integrity
* https://github.com/w3c/webappsec-csp
* https://github.com/w3c/webappsec-mixed-content
* https://github.com/w3c/webappsec-upgrade-insecure-requests
* https://github.com/w3c/webappsec-credential-management
* https://github.com/w3c/permissions
* https://github.com/w3c/webappsec-referrer-policy
* https://github.com/w3c/webappsec-secure-contexts
* https://github.com/w3c/webappsec-clear-site-data
* https://github.com/w3c/webappsec-cowl
* https://github.com/w3c/webappsec-epr
* https://github.com/w3c/webappsec-suborigins
* https://github.com/w3c/webappsec-cspee
* https://github.com/w3c/webappsec-permissions-policy
* https://github.com/w3c/webappsec-fetch-metadata
* https://github.com/w3c/webappsec-trusted-types
* https://github.com/w3c/webappsec-change-password-url
* https://github.com/w3c/webappsec-post-spectre-webdev


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Monday, 25 October 2021 17:00:43 UTC

This archive was generated by hypermail 2.4.0 : Monday, 25 October 2021 17:00:44 UTC